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CLAIMS 

1 . A method of distributing digitally encoded data, comprising 

a) dividing said data into a multiplicity of frames, 

b) encrypting said frames, 

c) distributing multiple copies of the said data frames to a multiplicity of 

users/ ^ 

excommunicating a seed value for key generation to respective secure 
modules looted at each of the multiplicity of users, 

e) decoding the data frames at respective users using keys derived from 
the seed value communicated to the secure module, 

f) passing\a control message to the secure module at a selected one or 
more of the multiplicity of users, 

g) at the or e^h selected user, in response to the said control message, 
controlling the availabilit\ of keys generated from the said seed value, thereby 
controlling access by the usWs to the said data. 



2. A method according to claim V in which a control field is distributed to each of 
the multiplicity of users, and the sebwre module is arranged to enable decryption of 
20 a respective frame only when the saiei control field has been passed to the secure 
module. 



3. A method according to claim 2, in Which the said control message for 
modifying the availability of keys is communicated to the secure module in the said 

25 control field. 

4. A method according to any ono of the prcoodirfb oloimo , in which each data 
frame includes a frame identity field, and each key generated by the secure module 
is specific to one frame identified by the said field. 

5-. - A method according to u u y una Of Ulb p r eced i ng clo i mg , V which the step of 



distributing multiple copies of the said data comprises multic 
via a communications network to the plurality of users. 



astrtag packets of data 
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6. A method according to wy on o of tho proced i ng claims , in which the control 
message is distributed with a data frame to the multiplicity of users, a user identity 
fieldv identifying a selected user or group of users is included in the control 
message, and the control message is acted on only by the user or group of users 

> identified by the said user identity field. 

7. A method according to any one of the proc e d i ng c l a im s , in which the control 
message includes a stop flag, and in response to the stop flag the generation of 
keys at the or e\ch selected user is stopped. 

8. A method according to eiTSr^rre-of-the^ r - cooding o l oirr& , including returning a 
response signal from secure module to the source of the control message. 

9. A method according\to claim 8, in which the control message includes a 
15 contact sender flag, and tfte step of returning a response signal from the secure 

module is carried out when me contact sender flag is set. 

10. A method according to claihn 8 -oi O ^ inciuding transmitting a further control 
message to the user on receipt of tl^e said response signal. 

20 

11. A method of operating a customeYerminal in a data communications system, 
the method comprising: 

a) receiving at the customer terminal a multiplicity of encrypted data 

frames 

25 b) receiving at the customer terminal aVseed value for key generation 

c) passing the said seed value for keV generation to a secure module 
located at the customer terminal 

d) generating in the secure module usinck the seed value keys for the 
decryption of data frames; 

30 e) decrypting the data frames using the said ke\s; 

f) passing to the said secure module a control \nessage received from a 
source remote from the customer terminal; 
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g) in response to the said control message controlling the availability of 



keys\enerated using the said seed value and thereby controlling access by the 
user of \he customer terminal to data received at the customer terminal. 



5 12. A dat^ communications system comprising 

a) a gemote data source arranged to output a plurality of frames; 

b) encryption means for encrypting the plurality of frames with different 
respective keys; 

c) a communications channel arranged to distribute multiple copies of the 
10 encrypted data frar 

d) a multiplicity of customer terminals arranged to receive from the 
communications channel respective copies of the encrypted data frames; 

e) a key generator located at a customer terminal and programmed to 
generate from a seed valu^Skeys for use in decrypting data frames: 

15 f ) ke Y control mearts connected to the key generator, the key control 

means comprising: 

an interface for receiving control messages; and 
control means responsiv^to the said control messages and arranged to 
control the availabiltiy to tta user of keys generated from the seed value; 
20 and 

g) decryption means connected to the key generator and arranged to 
decrypt the data frames received \at the customer terminal from the 
communications channel. 



25 13. A data communications system acdbrding to claim 12, in which the 
communications channel is a packet-switched data network. 

\ 0 fall ft 1 

14. A customer terminal for use in a method according to a«y-Gf^^etefmsH-^ 
4-*, the customer terminal comprising: 

a) a data interface for connection to a data communications channel; 

b) a key generator programmed to generate frtfm a seed value keys for use 
in decrypting data frames: 

c) key control means connected to the key generator, the key control 
means comprising: 
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\ an interface for receiving control messages; and 
*\ control means responsive to the said control messages and arranged to 
^control the availabiltiy to the user of keys generated from the seed value; 
id 

d) ^decryption means connected to the data interface and to the key 
generator andyarranged to decrypt data frames received via the data interface. 

15. A data server for use in method according to e ny one of c l a i ms 1 to the 
data server comprisr 

a) a data interface for connection to a data communications channel: 

b) means for ou\outting encrypted data frames via the data interface onto 
the communications chanitel for receipt by a multiplicity of customer terminals; 

c) means for outpuiting control mesages onto a data communications 
channel for controlling the operation of key generators at customer terminals. 

16. A method according to u ny (W uf da mns 1 to 11\ including generating keys 
from the seed value by iterated operations on the seed value by selected ones of a 
plurality of predetermined functions. 

17. A method of decrypting data frames Characterised by generating a decryption 
key from a seed value by iterated operation^ on a seed value by selected ones of 
a plurality of predetermined functions. 

18. A method according to claim 16-ef— 1^, in\which the selection of the said 
predetermined functions is determined by the value Vf a frame identity number. 

19. A method according to -e ny -tr nH^uf c l a i ms^ 6 to 18, - in which the 
predetermined functions are computationally symmetric. 



20. A method according to claim 19 in which the said functions are left-shifted 
binary XOR and right-shifted binary XOR. \ 
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21\ A method according to any on'c x ^laiaa< ; 1 tQ— 1 1 and 10 ?n including 
applying different characteristic variations to data decrypted at different respective 
customer terminals. 

5 22. A method or system according to errT-^yiTC-^rf^he-fir e cedin g c laims; including a 
plurality of \emote data sources, each outputting a respective plurality of frames. 

23. A method >or system according to claim 22, in which the customer terminal 
receives a primary seed value common to different respective data streams from 

10 the plurality of datk sources, and derives from the common primary key a plurality 
of different respective secondary seed values for decrypting frames from different 
respective data sources 

24. A method or systerrK according to claim 23, in which data received from 
15 different data sources includes different respective source identity values, and the 

respective secondary seed vaJue is generated from the primary seed value by 
modifying the primary seed value with the source identity value. 



\ , Q l&irt I 

af=pyVerr e -- of claims 1 to 1 ' 1 - diid 1< 
le type field. 



25. A method according to ef^/ren e-of claims 1 to 10 and 10 Lo -g-ir^in which 
20 each data frame includes a frame typ) 

26. A method according to claim 25\ including storing a receipt including data 
from the frame type field. 

25 27. A method of distributing digitially encoded data, comprising 

a) dividing said data into a multiplicity of frames, 

b) encrypting said frames, 

c) marking frames with a frame type field 

d) communicating said data frames to a user\ 
30 d) communicating a seed value for key generation to the user 

e) decoding the data frames at the users using \eys derived from the seed 

value 

f) generating and storing receipts for said datq frames, said frames 
including frame type data from the frame type field. 
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28. A methb^according to claim 27, further comprising communicating 
receipts to a third paM^ and obtaining from the said third party a payment for 
receipt of data of a specified type. 



